Yes.

server123.io runs on a standard low-cost VPS. It is a vanilla Server123 installation, but runs some additional code to handle registration, configuration, updates, and heartbeats for other Server123 sites.

You're looking at a fairly normal free WordPress theme ( AccessPress Ray), but with a custom child theme which uses Bootstrap, a CSS Grid layout, JavaScript, and hand-written HTML.

No. If your organisation controls example.com, then Server123 must be configured for (and will appear at) example.com. If you do not control the top level of example.com then you cannot use Server123 on that domain.

Ultimately, the server runs Ubuntu, and you can install anything you want. This is not going to break any warranties, because there is no warranty. However, our view is that you should consider the server to be a Black Box, which runs a limited number of pre-configured applications. Any changes you make, apart from normal security updates, run the risk of breaking existing functionality, or interfering with Server123 updates.

No. The server runs at runlevel 3 (systemd's multi-user.target), and doesn't have X11 or Wayland installed. This means that it can't support a desktop. This is normal practice for a server. You can install everything required for a remote desktop yourself, of course, but this isn't the intended use of the server.

The 'system users' are the Linux system users; they are not the front-end users (who are recorded in the Keycloak database). You can add as many system users as you want, but we don't recommend it. You should treat Server123 as a locked system. In normal circumstances, the server should only ever change as a result of a Server123 update, or an Ubuntu security update.

There are parts of the system which assume that there are only three system users: 'root', 'sysadmin', and 'wpuser' (/etc/ssh/sshd_config, for example, which handles ssh configuration for only these users). If you add more users then you should expect something to fail.

The 3 users are essentially arranged in a hierarchy of permissions. root, of course, can do anything. sysadmin is unprivileged, but does own specific parts of the system, and can run a lot of maintenance scripts (the ones in /usr/local/sbin). There are circumstances in which you may need to log in as sysadmin. Finally, wpuser is also unprivileged, but can run only a small number of maintenance scripts. Essentially, anyone who might need to do system maintenance of some sort should log in as sysadmin, and anyone who only needs access to the WordPress, DokuWiki, and MediaWiki installations should log in as wpuser.

The server has a normal (unprivileged) user named 'wpuser'. The WordPress, DokuWiki, and MediaWiki installations are in this user's home directory. The point of this arrangement is that whoever is responsible for your website and wikis can log in as wpuser, and carry out any required modifications to these installations, without needing root permissions.

wpuser therefore exists for security reasons. This user doesn't need any access to the /var/www directory, and doesn't need to configure Apache, but can carry out any required modifications to the PHP installations by logging in, or using a file transfer program, as user wpuser.

Both WordPress and DokuWiki are capable of updating themselves. However, the PHP apps are normally locked down. In the locked state, wpuser owns all the files, and Apache (which runs php) does not have the necessary permissions to write to (most of) the files in the installations. In this state, WordPress and DokuWiki can't update themselves. If you need to carry out an auto-update, you will first have to unlock the distributions. In 0625, wpuser must ssh to the server, run an unlock script, and re-lock the distribution when the update has completed (an update is planned to add this operation to the web console). The Administration guide contains instructions for the lock and unlock operations.

sysadmin and wpuser are not in the sudo group (this is the equivalent of the wheel group if you're more familiar with Red Hat systems).

This is simply a policy decision. A user who is in the sudo group has unrestricted access to any part of the system, using only their own password. Without sudo access, a user must know the root password in order to have unrestricted system access. This is, of course, the purpose of the root password; by definition, the only trusted user should be the root user.

There are situations in which an untrusted user must carry out administration tasks which would normally require root permissions. User wpuser, for example, might need to lock down the WordPress or wiki installations, which requires the ability to change file ownerships and permissions. The scripts required to carry out these actions are listed in /etc/sudoers.d/sysadmin, which allows a given user to run that specific script with sudo.

No. In 0625, the same auth mechanism must be used for all Subversion repos, and the same auth mechanism must be used for all Git repos.

In 0625, the Anonymous authentication mechanism applies for both read and write. This is potentially a problem if you need public read access, and private write access; this is not currently possible.

Both these restrictions will be addressed in an upcoming release.

Yes; see the Installation Guide for instructions for writing the ISO to a USB stick. However, Server123 is normally installed remotely, and the install from USB has limited testing.

You should note, in particular, that both the ISO image and Server123 itself boot from BIOS/MBR. This is because some VPS providers do not support UEFI boot. One popular local provider, for example, uses a Hyper-V Gen1 hypervisor, which is MBR-only.

If you intend to install locally, you should also note that some modern PCs make it difficult to boot from BIOS/MBR. You may have to set up your PC's BIOS for a one-time BIOS boot, for example, which is of little use. You should check your PC's abilities before attempting an install from USB.

Yes, but see the FAQ entry for "Can I install from a USB stick?".

Note that you can carry out a network install rather than booting from the supplied ISO, but your computer will still need the ability to boot from BIOS/MBR. This is because the Server123 image, when it has been written to your local disk, also boots from BIOS/MBR.

If you enable disk encryption, the data and swap partitions on your disk will be encrypted with a passphrase, and temporary files will be stored in RAM, rather than the /tmp directory. The data partition is where your sensitive data (emails, documents, and so on) is stored. Note that the rest of the disk - everything under /root, /home, /var and so on - is not encrypted, since it is not used for storing sensitive user data. This allows the server to boot up even if a passphrase cannot be supplied during the boot process.

To decide whether or not encryption is useful to you, it is first necessary to understand what the purpose of LUKS encryption is. LUKS encrypts an entire block device (or, in this case, a partition). When the system is powered up and running, the kernel decrypts (on the fly) any data read from the block device, and encrypts (on the fly) any data written to the block device. The encryption is therefore irrelevant when the system is running, because any user who is logged on to the system (including, in principle, an attacker) will see the decrypted data. This is in contrast to file-level encryption, which encrypts specific files. In this case, the encrypted file can only be read by a special-purpose program which has access to the decryption key.

LUKS (or any other at-rest encryption system, such as BitLocker) is therefore primarily useful to protect against physical loss of mobile devices (such as laptops and removable drives). Cloud servers are not 'mobile', but are off-site, and so have essentially the same characteristics. The factors you should consider include:

1. Most importantly, do you trust your cloud provider? Unencrypted storage is trivial to read, and encryption will provide some degree of security. When your system is powered on (in other words, nearly always) a rogue employee would have to break into a running system to retrieve any sensitive data. While this is possible, it is much harder than simply reading an unencrypted disk image
2. An off-site server will be powered off at some stage, even if this only happens during power outages, or when the server fails or is replaced. If you need to keep your data secure at this point, you should encrypt it
3. If your server is a VPS, the 'disk' is likely to be a backing file on a host system in the datacentre. If you do not encrypt, the backing file will always contain your unencrypted data. The section of the host's physical device that contains your backing file will eventually end up being assigned to another customer's VPS. The disk should always be zeroed if it is assigned to someone else, but you should consider encryption as an extra security measure
4. Even if your server is on your own premises, you could consider encryption to simplify the process of disposing of the disk when it eventually fails.

If you do enable encryption, you will have to manually enter the LUKS passphrase every time the system reboots. If you have automated security updates enabled, you should therefore consider disabling 'Auto reboot' during Stage 1 Configuration, and instead manually reboot when you have access to the server.

No. None of the apps are containerised, and no Docker components are installed. Portability is not a concern, and the installed applications communicate, or don't communicate, by design. This ensures the greatest performance and the least resource usage.

vi, vim, and nano are pre-installed. Historically, emacs-nox was also installed, but its footprint increased from 100MB in Ubuntu 22 to 337MB in Ubuntu 24. mg is now installed as an emacs-like replacement, and has a footprint of 237 KB. As the man page opines, "mg is compatible with emacs because there shouldn't be any reason to learn more editor types than emacs or vi".

You can, of course, install another editor if necessary.

Server123 communicates with server123.io in two cases. In the first, a licensing check is carried out (only) during Stage 1 configuration. The second case occurs during the heartbeat process, to test email reception.

Historically, email reception was tested by asking Google's SMTP server to send an email back to the originating domain. However, Google has effectively stopped free use of their server, and the procedure used now is to contact server123.io instead. Enough information is sent to construct the heartbeat email (your domain, IP address, vServer version, and the system load stats). server123.io then emails this information back to the administrator at your Server123 instance. This is the heartbeat email that you receive twice a day.

This information is not recorded at server123.io. If you do not want to receive heartbeat emails, see the 'How do heartbeats work?' FAQ entry.

The heartbeat procedure is complex, since it is intended to check a large part of the system functionality. This includes the testing of incoming emails, which must be sent from a remote provider. It proceeds as follows:

1. A cron job runs twice a day, at approximately 7AM and 7PM, making a curl request to run the local 'hbeat' program. This effectively reads a local 'web page'
2. 'hbeat' collects some system stats and connects to server123.io, which then sends the stats back to the admin at your server, as an email
3. The incoming email is received at your server, and is forwarded on to the admin's real mail address. This is the heartbeat email that you receive.

The process therefore tests your server's ability to serve a webpage, and to receive and send emails. If you want to disable this functionality, you should disable the originating cron job (to do this, log in as sysadmin, run crontab -e, and delete the heartbeat lines).

The 'load average' is a simple indication of system loading. It is essentially a count of the number of processes which are either running, or waiting to run, averaged over some time period (the number shown on the console front page, and on the heartbeat emails, is the one-minute load average). The load average should be divided by the number of processors available to give a measure of system utilisation (this is why the number of processors is also shown in the tables). The load average is not a particularly useful metric; the PSI (Pressure Stall Indicator) gives a better indication of loading.

In principle, an idle system should have a load of 0. However, the load figure includes the number of processes in an 'Uninterruptible sleep' state (this is shown as state 'D' in the output of ps and related commands). A process in state D is not actually consuming any system resources, but is waiting for something, and will eventually wake up.

At the time of writing (with Ubuntu 24.04.2 and kernel 6.8.0-62) a single kernel worker thread is generally shown in state D, which gives an apparent loading of 100% (before division by the number of CPUs). This thread can be ignored, and the underlying issue is likely to be fixed at some stage. pSnapper is a useful tool for tracking down issues of this sort; you can find more information here.